לוח משרות דרושים DevSecOps Engineer, לחיפוש זה נמצאו 21 משרות

Were looking for an experienced and passionate DevSecOps Engineer to join our dynamic Information Security team. In this role, youll work closely with our Development, SRE, and Security teams to ensure the security and scalability of our infrastructure, with a focus on maintaining secure cloud environments and applications. As part of a cutting-edge cloud and web application security team, you'll help drive the agile development of secure, resilient, and high-performance applications
What You'll Be Doing:
Collaborate with development, operations, and security teams to define and enforce best practices for cloud security, infrastructure security, and operational security standards across the entire cloud environment.
Utilize DevOps tools to build, harden, maintain, and integrate a robust security orchestration platform into our cloud infrastructure, ensuring security is embedded throughout the entire lifecycle.
Develop and implement Infrastructure as Code (IaC) solutions using Terraform to automate security, compliance, and infrastructure management processes within our large-scale AWS cloud infrastructure.
Manage, monitor, and continuously improve our cloud infrastructure to ensure it remains secure, scalable, and resilient, proactively identifying and mitigating potential security vulnerabilities before they can be exploited by attackers.

We are looking for a highly skilled Detection & Automation Engineer to act as the technical cornerstone of our newly expanding 24/7 Security Operations Center. In this role, you will lead the detection engineering efforts across our entire corporate, large-scale cloud infrastructure, and core product telemetry, while playing a pivotal role in evaluating, deploying, and building our first SOAR platform.
If you are an action-oriented builder who loves writing high-fidelity detection rules, integrating APIs, automating manual SecOps tasks, and architecting data pipelines from the ground up, this role is for you.
Responsibilities
Drive SOAR Implementation: Lead the POC, selection, and deployment of a modern SOAR platform. Build the API connectors and Python-based playbooks to automate the triage and incident containment.
Own the SIEM: Lead data ingestion, parsing, and CIM mapping for our corporate infrastructure, cloud, and product telemetry
AI-Driven Automation: Integrate AI and LLM capabilities into SOAR workflows and automation scripts to accelerate alert triage, summarize complex threat data, and streamline incident response.
Advanced Detection Engineering: Translate complex threat intelligence and 3rd-party IR logic into native, high-fidelity alerts inside the SIEM and Application logging platforms
Continuous Tuning: Work closely with the SecOps Analysts in a continuous feedback loop to tune out False Positives and ensure alert fatigue is minimized.
Architectural Integration: Ensure seamless log flow and webhook integrations between infrastructure, SIEM, and our security stack.

We are looking for a DevSecOps Engineer to join our amazing Security Cloud Engineering team. We are developing our revolutionary runtime engine and transforming the online experience for hundreds of millions of users. We are looking for people who are passionate about leading technology to the extreme.
If you are striving to develop an innovative product, make an impact, and work with the industrys brightest talent as part of one of the fastest-growing and successful startups around - this is where you want to be!
As part of the Security Cloud Engineering team, youll do the following:
Promote a strong security culture using security-driven awareness and best practices for continual security improvement across the business.
Ensure that security countermeasures, mitigations, and containment strategies are implemented on both infrastructure and applications.
Leverage AI within the DevOps and DevSecOps landscapes to maximize security ROI while driving innovation across the global company.
Secure and optimize our cloud services, to ensure robust security and compliance.
Establish and enforce DevSecOps best practices within our CI/CD pipelines and automation processes.
Automate the deployment of security controls and processes to ensure consistent and scalable protection for all security layers.
Develop and implement strategies for proactive threat detection and risk mitigation.
Collaborate with Security, Engineering, and DevOps teams to define and execute security strategy.

We're on a mission to redefine vehicle safety and reliability on a global scale. Founded in 2016, we have pioneered the world's first fully automated suite of vehicle inspection systems. At the heart of this innovation lies our advanced AI-centric technology, representing the pinnacle of computer vision, Machine Learning, and generative AI within the automotive sector.
With over $380M in funding and strategic partnerships with industry giants such as Toyota, Amazon, General Motors, Volvo, and Hertz, our technology is utilized in manufacturing plants, dealerships, wholesale auctions, delivery fleets, seaports, and more. Our growing global team of over 200 employees is committed to creating a workplace that celebrates diversity, encourages teamwork, and strives for excellence.
We seek a dedicated and proactive Senior SecOps Engineer to join our InfoSec team and take ownership of all security-related tasks across the organization. In this role, you will be key in aligning security goals with infrastructure, R&D and IT requirements. You will be responsible for integrating security into our CI/CD pipelines, managing cloud infrastructure security, ensuring compliance with security standards, and protecting our infrastructure from vulnerabilities.
A day in the life and how youll make an impact:
* Implement and manage security tools such as static code analysis, cloud posture monitoring, and penetration testing tools.
* Embed security into the DevOps lifecycle, including CI/CD pipelines, IaC (Infrastructure as Code), and software development workflows.
* Design and enforce security policies for cloud architecture, ensuring secure configurations and monitoring.
* Lead incident response activities, vulnerability management, and forensic investigations to mitigate threats.
* Drive compliance efforts (ISO 27001, SOC 2, GDPR, etc.) and audit readiness for the organization.
* Work closely with stakeholders ( CISO, COO, system Architects, DevOps, IT, Finance, HR, etc) to identify requirements and prioritize security needs.
* Continuously monitor systems and infrastructure for vulnerabilities, intrusions, and misconfiguration.
* Perform or manage penetration testing initiatives to identify security weaknesses.

Required DevSecOps Engineer
Description
About us:
Acloud gaming platform. Studios integrate our SDK once; from then on, any player can capture and share an interactive gameplay moment that anyone with a link can jump straight into - on any device, no downloads or signups. We run the streaming and real-time backend - WebSockets, Kafka, and low-latency video on multi-region EKS and GKE with a GitOps culture - where infrastructure choices show up directly in UX, security, and cost.
The Team
A small yet powerful team owning the full DevOps spectrum - cloud infrastructure, monitoring, security, and developer experience. The atmosphere is playful, the targets are ambitious, and there are no silos between disciplines.
What You'll do:
Manage end-to-end SOC 2 audits and compliance cycles.
Drive security posture across AWS/GCP (identity, secrets, supply chain, incident response).
Build internal tooling and AI-driven infrastructure workflows.
Handle foundational cloud infrastructure and GitOps engineering.

We are looking for a SecOps Engineer to join our Global Security team, with a strong focus on automation, cloud security, and operational excellence.
This role is ideal for someone who thrives on building scalable security operations, leveraging automation, AI, and modern tooling to improve detection, response, and overall security posture.
In addition to hands-on SecOps responsibilities, the role includes collaboration with GRC and compliance functions to ensure security operations align with organizational policies and regulatory requirements.
Responsibilities
Security Operations & Detection:
Monitor, investigate, and respond to security events across cloud and corporate environments
Operate and continuously improve SIEM/SOAR platforms and detection capabilities
Perform incident response, root cause analysis, and post-incident improvements
Tune alerts and detection logic to reduce noise and increase signal quality
Automation & AI-Driven Security:
Design and implement security automation workflows (e.g., alert triage, enrichment, response)
Leverage AI tools and AI agents to enhance SecOps efficiency and scalability
Build scripts and integrations (Python, APIs, etc.) to eliminate manual processes
Utilize automation platforms such as n8n (or similar tools) to orchestrate security workflows
Evaluate and integrate modern security technologies, including AI-based solutions
Cloud & Infrastructure Security:
Support security operations across multi-cloud environments (AWS, GCP)
Work closely with DevOps and engineering teams to secure cloud infrastructure
Identify and remediate misconfigurations, vulnerabilities, and access risks
Help enforce least privilege, network segmentation, and secure architecture practices
Security Engineering & Continuous Improvement:
Improve detection coverage and response playbooks
Participate in security testing, threat hunting, and purple-team activities
Contribute to building scalable, resilient security processes
Governance, Risk & Compliance (GRC) Collaboration:
Support implementation and tracking of security controls across the organization
Assist in audit processes, evidence collection, and control validation
Help ensure alignment between operational security activities and internal policies
Work with GRC stakeholders to strengthen overall security posture.

We are seeking a talented Senior DevSecOps Engineer / Security Architect to act as the primary security owner and focal point for the Velocity R&D organization. The ideal candidate will possess a background in IT and security platforms, strong coding skills, the ability to independently learn new technologies, an unwavering commitment to quality, a collaborative work ethic, and a profound passion for securing complex infrastructures.
Main Responsibilities:
Security Strategy & Architecture
Own and continuously improve Velocitys overall security posture, including risk assessment, prioritization, and long-term planning.
Design and guide secure architectures for new and existing systems and features, aligned with best practices and compliance requirements.
Lead threat modeling efforts and drive proactive validation against emerging attack techniques.
Evaluate, introduce, and develop security solutions tailored to Velocitys environment.
Design and implement security controls for emerging technologies, including agentic AI systems, addressing risks such as misuse, data leakage, and adversarial manipulation.
Security Engineering & DevSecOps

Embed security across the development lifecycle, including CI/CD pipelines, infrastructure, and application layers.
Enhance logging, auditing, and detection capabilities, and design detection strategies tailored to the platform.
Own and optimize security tooling, ensuring strong integration, visibility, and coverage across systems.
Incident Response & Operations
Investigate and respond to security incidents and alerts, leveraging deep system understanding.
Perform root cause analysis and drive improvements to prevent recurrence.
Collaboration & Enablement
Partner closely with R&D, IT, Product, and the CISO to ensure secure design and day-to-day operations.
Support compliance initiatives (e.g., SOC 2) and security reviews with internal and external stakeholders.
Assist in customer-facing security processes, including questionnaires and evaluations.
Promote security awareness and provide guidance across the organization.

This is a full-time on-site role located in Haifa for a SecOps professional. The responsibilities include maintaining and optimizing security operations, identifying and mitigating potential vulnerabilities, implementing security monitoring solutions, and responding to security incidents. The role involves working collaboratively with cross-functional teams to ensure the deployment of robust security measures and policies across systems and infrastructures.

We are seeking a skilled and motivated DevSecOps Engineer to integrate security practices into our DevOps pipeline, ensuring secure software development, deployment, and infrastructure.

You will automate and own security tooling, Integrate SAST, DAST, container/IaC scans, and secret detection into our CI/CD, continuously improving the stack. Harden application security, embed secure-coding best practices, OWASP Top-10 defenses, and threat modeling throughout the SDLC. Raise cloud security standards, keep our cloud environments aligned with best practice to mitigate any risk.



Key Responsibilities:

Secure CI/CD Pipelines: Integrate security into continuous integration and delivery workflows (CI/CD).
Automation & Tooling: Implement and manage tools for static and dynamic code analysis (SAST, DAST), software composition analysis (SCA), and secrets management.
Cloud Security: Ensure infrastructure-as-code (IaC) and cloud deployments (e.g., AWS, Azure, GCP) are secure and compliant.
Monitoring & Incident Response: Set up security monitoring and logging; support incident response and forensic analysis.
Policy & Compliance: Work with compliance teams to enforce standards such as ISO 27001, SOC 2, NIST, or HIPAA, depending on your environment.
Collaboration: Serve as a bridge between development, operations, and security to ensure alignment and shared responsibility for security.

We are looking for an experienced DevSecOps Engineer to join our DevOps core platform team and help strengthen the security of our cloud-native infrastructure and development pipelines.
You will work closely with our CISO, DevOps team, and developers to integrate security practices across the entire software development lifecycle (SDLC), helping ensure a secure, scalable, and resilient platform across cloud and on-prem environments.
Responsibilities
Integrate security practices into CI/CD pipelines and across the SDLC
Design and implement automated security solutions (vulnerability scanning, compliance checks, threat detection)
Build and maintain Infrastructure as Code (IaC) for secure, scalable cloud environments (Terraform, Ansible)
Automate security controls and operational processes across cloud and Kubernetes environments
Design, implement, and optimize CI/CD pipelines with a focus on security, reliability, and performance
Secure cloud and on-prem environments (IAM, network controls, encryption best practices)
Manage and harden Kubernetes workloads, including configuration, access control, and image security
Collaborate with DevOps, developers, and security teams to improve system reliability and overall security posture
Conduct security assessments, penetration testing, and compliance audits
Monitor threats, respond to incidents, and improve incident response processes
Promote DevSecOps culture by guiding teams on secure coding, infrastructure, and deployment practices
Enhance observability by integrating monitoring, logging, and SIEM solutions.

we are looking for a DevSecOps.
As a DevSecOps engineer you will be a part of our DevOps group and play a critical role in designing and implementing application and infrastructure security programs that will make sure that our systems continue to be secure and compliant with our clients high bar.
You will work closely with developers and DevOps engineers to help identify and remediate application and infrastructure security issues.
What youll do:
Implement an application security program
Design and implement security automation and controls within CI/CD pipelines utilizing SAST, DAST and SCA tools
Collaborate on architecture reviews, threat modeling, and developer security training sessions to elevate AppSec maturity
Implement an infrastructure security program
Integrate and implement CSPM controls within a high scale cloud environment.
Own strategy for security in IAM, secret management and similar security-critical components
Own security training and review for DevOps teams.
Orchestrate execution of penetration testing on infrastructure and application and a bug bounty program
Own compliance processes within DevOps
Build and continuously improve SOC2 compliance processes and audit readiness tooling
Lead technical responses for internal and external audits, working closely with GRC, engineering, and cloud teams to resolve gaps and strengthen security posture.​

our company has been delivering smart, scalable web solutions for nearly two decades, specializing in Shopify, application development, and third-party system integrations. We love connecting systems almost as much as we enjoy connecting with our clients.
We are looking for a hands-on DevSecOps Specialist to lead and improve security across our cloud infrastructure, development workflows, production environments, and internal systems. This is a high-ownership security role designed for someone with a strong Cloud / DevOps / infrastructure background who wants to grow deeper into security. You do not need to have held a dedicated security position before, but you should bring strong production experience, serious curiosity about security, and the ownership mindset needed to become our internal security lead. We understand that this is a growth path, and we will provide the time, support, and resources needed for the right person to develop into the role.
What youll do
* Take hands-on ownership of security processes across cloud, servers, infrastructure, CI/CD pipelines, and internal systems
* Build and implement practical security solutions, tools, policies, and workflows
* Work closely with engineering teams to integrate security into development and deployment processes
* Identify, prioritize, and help remediate security risks in production environments, networks, permissions, deployments, and services
* Help create and maintain internal security policies, processes, and documentation
* Support audits, compliance preparation, and external security reviews when needed